"US job website Monster.com has suffered an online attack with the
personal data of hundreds of thousands of users stolen, says a security
firm.

A computer program was used to access the employers' section of the website using stolen log-in credentials.

Symantec said the log-ins were used to harvest user names,
e-mail addresses, home addresses and phone numbers, which were uploaded
to a remote web server.

The stolen data could be used to send phishing and spam e-mails.

"This remote server held over 1.6 million entries with personal
information belonging to several hundred thousands of candidates,
mainly based in the US, who had posted their resumes to the Monster.com
website,"